{"id":"https://openalex.org/W2012638844","doi":"https://doi.org/10.1145/2020976.2020996","title":"BIXSAN","display_name":"BIXSAN","publication_year":2011,"publication_date":"2011-09-30","ids":{"openalex":"https://openalex.org/W2012638844","doi":"https://doi.org/10.1145/2020976.2020996","mag":"2012638844"},"language":"en","primary_location":{"id":"doi:10.1145/2020976.2020996","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2020976.2020996","pdf_url":null,"source":{"id":"https://openalex.org/S186921487","display_name":"ACM SIGSOFT Software Engineering Notes","issn_l":"0163-5948","issn":["0163-5948","1943-5843"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM SIGSOFT Software Engineering Notes","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5100845904","display_name":"Sharath Chandra V.","orcid":null},"institutions":[{"id":"https://openalex.org/I122964287","display_name":"National Institute of Technology Tiruchirappalli","ror":"https://ror.org/047x65e68","country_code":"IN","type":"education","lineage":["https://openalex.org/I122964287"]}],"countries":["IN"],"is_corresponding":true,"raw_author_name":"Sharath Chandra V.","raw_affiliation_strings":["National Institute of Technology, Tiruchirappalli - 620015, Tamil Nadu, India"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"National Institute of Technology, Tiruchirappalli - 620015, Tamil Nadu, India","institution_ids":["https://openalex.org/I122964287"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5115602969","display_name":"S. Selvakumar","orcid":"https://orcid.org/0000-0001-9471-7632"},"institutions":[{"id":"https://openalex.org/I122964287","display_name":"National Institute of Technology Tiruchirappalli","ror":"https://ror.org/047x65e68","country_code":"IN","type":"education","lineage":["https://openalex.org/I122964287"]}],"countries":["IN"],"is_corresponding":false,"raw_author_name":"S. Selvakumar","raw_affiliation_strings":["National Institute of Technology, Tiruchirappalli - 620015, Tamil Nadu, India"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"National Institute of Technology, Tiruchirappalli - 620015, Tamil Nadu, India","institution_ids":["https://openalex.org/I122964287"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5100845904"],"corresponding_institution_ids":["https://openalex.org/I122964287"],"apc_list":null,"apc_paid":null,"fwci":6.1119,"has_fulltext":false,"cited_by_count":24,"citation_normalized_percentile":{"value":0.9594113,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":98},"biblio":{"volume":"36","issue":"5","first_page":"1","last_page":"7"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9919000267982483,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9914000034332275,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/cross-site-scripting","display_name":"Cross-site scripting","score":0.9603084325790405},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8698796033859253},{"id":"https://openalex.org/keywords/web-content","display_name":"Web content","score":0.586846113204956},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5633359551429749},{"id":"https://openalex.org/keywords/web-application","display_name":"Web application","score":0.5055961608886719},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.4607385993003845},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.447148859500885},{"id":"https://openalex.org/keywords/web-application-security","display_name":"Web application security","score":0.4395431876182556},{"id":"https://openalex.org/keywords/dynamic-web-page","display_name":"Dynamic web page","score":0.426960825920105},{"id":"https://openalex.org/keywords/scripting-language","display_name":"Scripting language","score":0.4164067804813385},{"id":"https://openalex.org/keywords/parsing","display_name":"Parsing","score":0.41310298442840576},{"id":"https://openalex.org/keywords/client-side-scripting","display_name":"Client-side scripting","score":0.4110106825828552},{"id":"https://openalex.org/keywords/web-page","display_name":"Web page","score":0.3328709602355957},{"id":"https://openalex.org/keywords/web-navigation","display_name":"Web navigation","score":0.2174404263496399},{"id":"https://openalex.org/keywords/web-development","display_name":"Web development","score":0.2053115963935852},{"id":"https://openalex.org/keywords/web-api","display_name":"Web API","score":0.16645973920822144},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.11886727809906006}],"concepts":[{"id":"https://openalex.org/C39569185","wikidata":"https://www.wikidata.org/wiki/Q371199","display_name":"Cross-site scripting","level":5,"score":0.9603084325790405},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8698796033859253},{"id":"https://openalex.org/C2776324614","wikidata":"https://www.wikidata.org/wiki/Q3948731","display_name":"Web content","level":3,"score":0.586846113204956},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5633359551429749},{"id":"https://openalex.org/C118643609","wikidata":"https://www.wikidata.org/wiki/Q189210","display_name":"Web application","level":2,"score":0.5055961608886719},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.4607385993003845},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.447148859500885},{"id":"https://openalex.org/C59241245","wikidata":"https://www.wikidata.org/wiki/Q4781497","display_name":"Web application security","level":4,"score":0.4395431876182556},{"id":"https://openalex.org/C100158260","wikidata":"https://www.wikidata.org/wiki/Q1650567","display_name":"Dynamic web page","level":3,"score":0.426960825920105},{"id":"https://openalex.org/C61423126","wikidata":"https://www.wikidata.org/wiki/Q187432","display_name":"Scripting language","level":2,"score":0.4164067804813385},{"id":"https://openalex.org/C186644900","wikidata":"https://www.wikidata.org/wiki/Q194152","display_name":"Parsing","level":2,"score":0.41310298442840576},{"id":"https://openalex.org/C195274430","wikidata":"https://www.wikidata.org/wiki/Q1650567","display_name":"Client-side scripting","level":5,"score":0.4110106825828552},{"id":"https://openalex.org/C21959979","wikidata":"https://www.wikidata.org/wiki/Q36774","display_name":"Web page","level":2,"score":0.3328709602355957},{"id":"https://openalex.org/C61096286","wikidata":"https://www.wikidata.org/wiki/Q7978592","display_name":"Web navigation","level":3,"score":0.2174404263496399},{"id":"https://openalex.org/C79373723","wikidata":"https://www.wikidata.org/wiki/Q386275","display_name":"Web development","level":3,"score":0.2053115963935852},{"id":"https://openalex.org/C127613066","wikidata":"https://www.wikidata.org/wiki/Q557770","display_name":"Web API","level":4,"score":0.16645973920822144},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.11886727809906006}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/2020976.2020996","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2020976.2020996","pdf_url":null,"source":{"id":"https://openalex.org/S186921487","display_name":"ACM SIGSOFT Software Engineering Notes","issn_l":"0163-5948","issn":["0163-5948","1943-5843"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM SIGSOFT Software Engineering Notes","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.7400000095367432,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":4,"referenced_works":["https://openalex.org/W139015350","https://openalex.org/W2049214202","https://openalex.org/W2162316255","https://openalex.org/W4254369709"],"related_works":["https://openalex.org/W187998727","https://openalex.org/W1531015913","https://openalex.org/W2187721372","https://openalex.org/W2735662051","https://openalex.org/W2324487656","https://openalex.org/W2326682353","https://openalex.org/W4319431564","https://openalex.org/W3149638606","https://openalex.org/W2046312985","https://openalex.org/W2059725703"],"abstract_inverted_index":{"Proliferation":[0],"of":[1,51,67,81,148,155,171,179,196,208,220,231,235,249,261,269,284,298,338,354],"social":[2],"networking":[3],"sites,":[4],"and":[5,54,73,85,112,119,136,158,166,177,313,315],"web":[6],"applications":[7],"which":[8],"deliver":[9],"dynamic":[10,156],"content":[11,21,30,84,111,115,157],"to":[12,45,63,104,125,143,151,184,257,293,317],"the":[13,17,23,43,52,65,68,108,132,153,206,218,229,247,259,276,282,295,321,324,332,336,351],"clients":[14],"have":[15,42],"increased":[16],"user":[18,82],"created":[19,83],"HTML":[20,29,110,134,222,238],"in":[22,201,303],"World":[24],"Wide":[25],"Web.":[26],"This":[27,121],"user-created":[28],"can":[31],"be":[32],"a":[33,97,127,189,285],"notorious":[34],"vector":[35],"for":[36,92,100,194,263,274,319],"Cross-Site":[37],"Scripting,(XSS)":[38],"attacks.":[39,94],"XSS":[40,59,93,144,192,197,339],"attacks":[41,60,198],"ability":[44],"target":[46],"websites,":[47],"steal":[48],"confidential":[49],"information":[50],"users,":[53],"hijack":[55],"their":[56],"accounts,":[57],"etc.":[58],"are":[61,174,214],"launched":[62],"exploit":[64],"vulnerabilities":[66],"poorly":[69],"developed":[70],"application":[71],"code":[72,341],"data":[74],"processing":[75],"systems.":[76],"In":[77,182],"particular,":[78],"improper":[79],"validation":[80],"un-sanitized":[86],"custom":[87],"error":[88],"messages":[89],"introduce":[90],"vulnerability":[91],"It":[95],"is":[96,199,224,240,255,272],"challenging":[98],"task":[99],"any":[101],"security":[102],"mechanism":[103,128],"filter":[105],"out":[106,131],"only":[107],"harmful":[109,133],"retain":[113],"safe":[114,138],"with":[116],"high":[117,244],"fidelity":[118,176],"robustness.":[120],"has":[122,328,345],"motivated":[123],"us":[124],"develop":[126],"that":[129,241,331,348],"filters":[130],"content,":[135],"allows":[137],"HTML.":[139,181,278],"The":[140,169,233],"existing":[141],"solutions":[142,173],"attack":[145,340],"include":[146],"use":[147,219,248],"regular":[149],"expressions":[150],"detect":[152,258],"presence":[154,260],"client":[159,290],"side":[160,291],"filtering":[161,264],"mechanisms":[162],"such":[163,306],"as":[164,215,307],"Noscript":[165],"Noxes":[167],"tool.":[168],"drawbacks":[170,187],"these":[172,186],"low":[175],"disallowing":[178],"benign":[180,277],"order":[183],"overcome":[185],"BIXSAN,":[188],"Browser":[190],"Independent":[191],"SANitizer":[193],"prevention":[195],"proposed":[200,225,256,273,333],"this":[202],"paper.":[203],"BIXSAN":[204,280,300,334,349],"includes":[205,281],"proposition":[207,283],"three":[209],"pronged":[210],"strategy.":[211],"These":[212],"strategies":[213],"follows:":[216],"Firstly":[217],"complete":[221,237],"parser":[223,239],"rather":[226],"than":[227],"approximating":[228],"behavior":[230,297,353],"parser.":[232],"advantage":[234],"using":[236],"it":[242,265,327,344],"offers":[243],"fidelity.":[245],"Secondly":[246],"modified":[250],"browser,":[251],"viz.,":[252],"JavaScript":[253,262],"Tester":[254],"out.":[266],"Thirdly,":[267],"identification":[268],"static":[270],"tags":[271],"allowing":[275],"Further,":[279,343],"parse":[286],"tree":[287],"generator":[288],"at":[289],"browser":[292],"reduce":[294],"anomalous":[296,352],"browsers.":[299,322],"was":[301],"experimented":[302],"various":[304],"browsers":[305],"Opera,":[308],"Netscape,":[309],"Internet":[310],"Explorer":[311],"(IE),":[312],"Firefox":[314],"found":[316,330],"work":[318],"all":[320],"From":[323],"experiments":[325],"conducted":[326],"been":[329,346],"prevents":[335],"injection":[337],"successfully.":[342],"verified":[347],"reduces":[350],"browse.":[355]},"counts_by_year":[{"year":2022,"cited_by_count":1},{"year":2020,"cited_by_count":2},{"year":2019,"cited_by_count":2},{"year":2018,"cited_by_count":4},{"year":2017,"cited_by_count":3},{"year":2016,"cited_by_count":1},{"year":2015,"cited_by_count":3},{"year":2014,"cited_by_count":3},{"year":2013,"cited_by_count":3},{"year":2012,"cited_by_count":2}],"updated_date":"2026-05-21T06:26:12.895304","created_date":"2016-06-24T00:00:00"}